Le 05/03/2011 00:18, Stan Hoeppner a écrit : > lst_ho...@kwsoft.de put forth on 3/4/2011 3:33 PM: > >> BTW, is there any "how-to" for getting the least possible memory >> footprint for Postfix. > >> - don't use regex/pcre maps > > This isn't necessarily true, is it? In some cases I would think it's > dramatically reversed in favor of PCRE tables (unless the Postfix PCRE > processing code overhead eats up a massive amount of memory). For > example, with the following single PCRE I can block a few million, > literally, residential hosts in the Centurylink (formerly Embarq) > consumer broadband aDSL network: > > /^.*\.(dyn|dhcp)\.embarqhsd\.net$/ REJECT Please use ISP relay >
you can simplify that: /\.(dyn|dhcp)\.embarqhsd\.net$/ REJECT Please use ISP relay more generally /^.* is never needed. anyway, this example is too simple and can be replaced with 2 cdb entries: .dyn.embarqshd.net REJECT ... .dhcp.embarqshd.net REJECT ... a "better" example would be /(\W\d+){4}\..*\.embarqhsd\.net$/ REJECT ... > To do this with a CIDR would take at least 100 entries to cover all the > subnets, probably many many more, due to the way they assign blocks by > state, and rDNS by customer type, with (dyn|dhcp|sta) all existing > within each of the top level parents. > > To do this with a hash table would require multiple hundreds of entries > as you'd be limited to using /24s. >